G - Physics – 06 – F
Patent
G - Physics
06
F
G06F 21/20 (2006.01) H04L 9/32 (2006.01)
Patent
CA 2683273
Detecting harmful or illegal intrusions into a computer network or into restricted portions of a computer network uses statistical analysis to match user commands and program names with a template sequence. Discrete correlation matching and permutation matching are used to match sequences. The result of the match is input to a feature builder and then a modeler to produce a score. The score indicates possible intrusion. A sequence of user commands and program names and a template sequence of known harmful commands and program names from a set of such templates are retrieved. A closeness factor indicative of the similarity between the user command sequence and a template sequence is derived from comparing the two sequences. The user command sequence is compared to each template sequence in the set of templates thereby creating multiple closeness or similarity measurements. These measurements are examined to determine which sequence template is most similar to the user command sequence. A frequency feature associated with the user command sequence and the most similar template sequence is calculated. It is determined whether the user command sequence is a potential intrusion into restricted portions of the computer network by examining output from a modeler using the frequency feature as one input.
Sim & Mcburney
Visa International Service Association
LandOfFree
Computer network intrusion detection does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Computer network intrusion detection, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Computer network intrusion detection will most certainly appreciate the feedback.
Profile ID: LFCA-PAI-O-1989806